PS: I haven't tested it yet.
Source of information: h4x0r ' s Blog
Copy Code code as follows:
Botheruser = False ' ' If you need to log on as a different NT user
If Botheruser = True and Trim (Request.ServerVariables ("Auth_User")) = "" Then
Response.Status = "401 Unauthorized"
Response.AddHeader "Www-authenticate", "BASIC"
If Request.ServerVariables ("auth_user") = "" Then Response.End ()
End If
Focus on Demand
Response.Status = "401 Unauthorized" as long as you add this phrase at the beginning of the code, IIS automatically invokes the login window.
This feature can invoke other NT user logins
If you know the password of a user who is larger than the guest, say, administrator, hey, you are well developed [for example: through Findpass, or automatic login to get the]
For example, know the password of the administrator, but the other side has no terminal, there is no other permission to mention Dongdong, hey, this thing can help you busy
After landing, access to the right is the corresponding landing user rights Oh!
Sensitive directory: Store CIF pcanywhere, boot, etc directory
You can access all the directories that the user has permissions on, as well as access to the files that they have permissions for, such as log or something.